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Threat model: 
what can the attacker do? 









۳ | 


watch (or be!) Bob! 


Control part of the network! 











Anonymity isn't encryption: 
Encryption just protects contents. 


“Hi, Bob!” 








<gibberish> 





ES “Hi, Bob!” 


























“We kill people based on metadata” 


Metadata 
Data about data 


“Metadata was traditionally in the card 
catalogs of libraries” 


~ Wikipedia 








Anonymity serves different 
interests for different user groups. 


Anonymity 








Anonymity serves different 
interests for different user groups. 


Anonymity ———9»-| Businesses 





| “It's network security!” 


“Tre nri „| Private citizens 
It's privacy! 








Anonymity serves different 
interests for different user groups. 


“It's traffic-analysis 
resistance!” 


| “It's network security!” 
“Tre nri „| Private citizens 
It's privacy! 











Anonymity serves different 
interests for different user groups. 


Human rights | “It's reachability!” 
“It's traffic-analysis ENVIS 
resistance!” 


“It's network security!” 


“Tre nri „| Private citizens 
It's privacy! 








10 





ES) How Tor Works: 2 ولع‎ Tor node 


=.= œ unencrypted link 
—p encrypted link 


Alice 


Step 2: Alice's Tor client 
picks a random path to 


destination server. Green - 
links are encrypted, red 
links are in the clear. 








About Tor - Tor Browser m 0 


About Tor x 


Q @ Tor Browser 





New to Tor Browser? Tor Browser 8.5.4 
Let's get started. View Changelog 


Explore. Privately. 


You're ready for the world's most private browsing experience. 





Keep Tor strong. Donate Now » 


Questions? Check our Tor Browser Manual » 


& Get the latest news from Tor straight to your inbox. Sign up for Tor News. » 


The Tor Project is a US 501(c)(3) non-profit organization advancing human rights and freedoms by creating and deploying free and open source anonymity 
and privacy technologies, supporting their unrestricted availability and use, and furthering their scientific and popular understanding. Get Involved » 
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theamnesicincognitolivesystem 








Search or enter address Q Search or enter address : A. Search or enter address 





WELCOME PRIVACY TOR NETWORK WELCOME PRIVACY TOR NETWORK 


TÓf Browser 


Explore. | VP : ظ‎ 
Privately. NS ee 


You're ready. Travel a decentralized network. 


Tor Browser connects you to the Tor network, a 
network of servers we call "relays; run by 
now protected against tracking, thousands of volunteers around the world. 
surveillance, and censorship. This quick Unlike a VPN, there's no one point of failure or 


onboarding wil show you how centralized entity you need to trust in order to 


START NOW GO TO SECURITY SETTINGS 
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Total relay bandwidth 


Advertised bandwidth === Bandwidth history 


400 Gbit/s - 


300 Gbit/s - 


200 Gbit/s - 


100 Gbit/s - 


0 Gbit/s - 


2017 2019 


The Tor Project - https://metrics.torproject.org/ 








Tor's safety comes from diversity 


e #1: Diversity of relays. The more relays 
we have and the more diverse they are, 
the fewer attackers are in a position to do 
traffic confirmation. (Research problem: 
measuring diversity over time) 


e #2: Diversity of users and reasons to use 
it. 50000 users in Iran means almost all of 
them are normal citizens. 
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Transparency for Tor is key 


* Open source / free software 


e Public design documents and 
specifications 


* Publicly identified developers 


* Not a contradiction: 
privacy is about choice! 








Tor censorship 5 


٠ Background / Phase 1 (2006-2011): 
Bridges, pluggable transports 
٠ Phase 2 (2011-2019): 


Active probing, obfsproxy, domain 
fronting, many more countries 


* Phase 3 (2019-?): 
Snowflake, obfs4, decoy routing, ... 








Relay versus Discovery 


There are two pieces to all these 
“proxying” schemes: 

a relay component: building circuits, 
sending traffic over them, getting the 
crypto right 


a discovery component: learning what 
relays are available 








The basic Tor design uses a simple 
centralized directory protocol. 





Alice downloads 
consensus and 
descriptors from 
anywhere 
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^ Authorities 


Relays publish publish a consensus 
self-signed list of all descriptors 


descriptors. 








Early blocking 


e 2006: Thailand blocks our website 
by DNS 

e 2007: Iran/Saudi Arabia/others use 
websense/smartfilter to block Tor”s 
http directory fetches. 


The fix: put everything inside TLS. 








بالله بالستر ...! 


تصفح بامان! 
عذرا, هذا المو قع غير متاخ فى دولة الز مارات العربية المتحدة, 


Asa تشكل‎ 
¿Saw Já 








Utua‏ اليوهيا 


محتوي مدر 
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*السيفسة ۱ 
بدونة الا مارات العربية اله 


بية المتحدة. 





إذاكانت لديك وجهة نظر هختلقة. الرجاء انقر Lim‏ 
Surf Safely!‏ 


This website is not accessible in the UAE. 


| وخدمة متطلبات 
ı‏ بدخوله لاشتماله 
d‏ تنظيم الاتصالات 























The Internet bs a powered | m foe communication, sharing and serving 


sH yes, the she you are trying to access contains. 








site is not 
TRUSTED 


Surf Safe 


This website is ۱ 





The Internet is a ام‎ 
serving our daily le 
access contains cor 


http://torproject.org/ 
te Blocke... X 


No 


http://torproject. 


Y الموقع‎ ob ذا كنت تعتقد‎ alal عليه برحی تعبله الاستهاره‎ ahlu wi تدر حظر هدا الموقع بسبب احتوانه على مكتوبات تتعارمی مع‎ 
A ie ۳ ^ 5 
d E 
C This site has been blocked due to content that is contrary to the laws of the Sultanate if you believe that the website you are trying to | 
access does not contain any such content, please fill in and submit the form below 
click المملكة العربية‎ , 
: * Servers torprotect org 
lieve the requested page should حجب تفضل بالضغط‎ WebSite -— ——" 


be blocked please click here. 
e blocked please click here Email Addiuas* 


Comments* 


































Blocked URL 


۳ hs a هدا الموشع‎ 
EE 7 bs. OS 





Sorry, the requested page is = ۲ 5 
unavailable. إقع للطلوب غير متاح.‎ 5 
السياسة التتظبمبة‎ 


= النضاز a E E‏ دولة الإمارات "up TM‏ = —_— أن Y‏ تحجب Pre zo e‏ مسن 
Access to this site is currently blocked. The site falls‏ ن خدمة الإنترنت في المملكة العربية السعودية, more information about Internet service in Saudi Arabia,‏ 
under the of the UAE’ S‏ الموفع النالي: please click here: www.internat.gov.sa www internet govsa‏ 


Internet Access Management Policy. 


ll KT WATA... © ص‎ ۱ @ © 874 


“Tweet | Blocked by Mada Com... 





M ان الموقع الذي خاول زبارته محجوب‎ s 
Mada Communications cess to this website is prohibited © 








تم إيقاف عملية الدخول الى الموفع الذي 
تحاول زيارته نظر | لاحتواثه على محتويات 











محظورة 


The web poge you ore trying lo 
access has been bloc ted as the 











Iran throttles SSL (June 2009) 


٠ We made Tor's TLS handshake look 
like Firefox+Apache. 


e So when Iran freaked out and 
throttled SSL bandwidth by DPI in 
summer 2009, they got Tor for free 








Attackers can block users from 
connecting to the Tor network 


1) By blocking the directory authorities 

2) By blocking all the relay IP addresses in 

the directory, or the addresses of other Tor 

services 

3) By filtering based on Tor's network 

fingerprint 

4) By preventing users from finding the 

Tor software (usually by blocking website) 
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User 


Blocked 
User 


Blocked 
User 





Blocked 


B EI 
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How do you find a bridge? 


1) https: //bridges.torproject.org/ will tell 
you a few based on time and your IP address 


2) Mail bridges@torproject.org from a gmail 
address and we'll send you a few 


3) I mail some to a friend in Shanghai who 
distributes them via his social network 


4) You can set up your own private bridge and 
tell your target users directly 
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Tor Network Settings 


© Tor is censored in my country 
Select a built-in bridge ® 
Request a bridge from torproject.org 


O Provide a bridge | know 


Enter bridge information from a trusted source. 





| use a proxy to connect to the Internet ® 


s connections to certain ports 


M 


This computer goes through a firewall that only allow 





x | + 


About Tor - Tor Browser 


About Tor 


CG | @ Tor Browser | Search with DuckDuckGo or enter address 





Tor Browser 8.5.4 


New to Tor Browser? Tor Network Settings 


View Changelo 
Y Tor is censored in my country 


Select a built-in bridge (2) 


e Request a bridge from torproject.org 


Solve the CAPTCHA to request a bridge. 


s from the image 


Keep Tor stro 


CRUE For assistance, visit support.torproject.org/#connectingtotor 





The Tor Project is a US 501(c)(3) non-profit organization advancing human rights and freedoms by creating and deploying free and open source anonymity 
and privacy technologies, supporting their unrestricted availability and use, and furthering their scientific and popular understanding. Get Involved » 
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Let's get started. 











China (September 2009) 


٠ China grabbed the list of public 
relays and blocked them 

e They also enumerated+blocked one 
of the three bridge buckets 
(https://bridges.torproject.org/) 

° But they missed the other bridge 
buckets. 





Number of directory requests to directory mirror trusted 


T T 
sep 17 sep 24 


https/Aorproject.org 





Chinese Tor users via bridges 











China (March 2010) 


* China enumerated the second of our 
three bridge buckets (the ones 
available at bridges@torproject.org 
via Gmail) 

* We were down to the social 
network distribution strategy, and 
the private bridges 
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Iran (January 2011) 


e Iran blocked Tor by DPI for SSL and 
filtering our Diffie-Hellman parameter. 


٠ Socks proxy worked fine the whole time 
(the DPI didn't pick it up) 


٠ DH p is a server-side parameter, so the 
relays and bridges had to upgrade, but not 
the clients 
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Directly connecting users from the Islamic Republic of Iran 


12000 - 
10000 - 
8000 - 
6000 - 
4000 - 
2000 - 


0- 


| | | | 
Dec-2010 Jan-2011 Feb-2011 Mar-2011 Apr-2011 


The Tor Project - https://metrics.torproject.org/ 


Directly connecting users from Egypt 


The Tor Project - https://metrics.torproject.org/ 








Iran (September 2011) 


٠ This time, DPI for SSL and look at our TLS 
certificate lifetime. 


٠ (Tor rotated its TLS certificates every 2 
hours, because key rotation is good, right?) 


* Now our certificates last for a year 


٠ These are all low-hanging fruit. Kind of a 
weird arms race. 
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Directly connecting users from the Islamic Republic of Iran 


The Tor Project - https://metrics.torproject.org/ 











39 





 Auswártiges Amt 


Werderscher Markt1. | 








Tunisia (October 2011) 


٠ First country to announce officially that they 
censor 


° Using Smartfilter 
e Outsourced to a foreign corporation 
٠ And Tunisia got a discount! 
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Pluggable transports 


Tor Client Tor Bridge 
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The two currently successful PTs 


٠ obfsproxy (2012): add a layer of 
encryption on top so there are no 
recognizable headers. 

٠ meek (2014): “domain fronting” via 
Google, Azure, Amazon 
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Tor censorship 5 


* Background Phase + (2006-2644): 
Bridges, pluggable-transports 

٠ Phase 2 (2011-2019): 
Active probing, obfsproxy, domain 
fronting, many more countries 

* Phase 3 (2019-?): 


Snowflake, obfs4, decoy routing, ... 
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China (October 2011) 


٠ Started its active probing campaign by 
DPling on Tor’s TLS handshake, and 
later on obfs2 and obfs3 

٠ Spoofed IP addresses from inside China 

٠ The fix: obfs4 requires the client to 
prove knowledge of a secret, else it 
won't admit to being an obfs4 bridge. 
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Directly connecting users from Ethiopia 


0- 


2012-01 2012-04 2012-07 2012-10 2013-01 


The Tor Project - https://metrics.torproject.org/ 








China (March 2015) 


٠ “Great Cannon” targets github 


° Greatfire declaring war, “you can't block 
us” 


٠ Huge difference from previous “let them 
save face” approach 
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Directly connecting users from Russia 


The Tor Project - https://metrics.torproject.org/ 





Directly connecting users from Turkey 


2018 2019 


The Tor Project - https://metrics.torproject.org/ 





Directly connecting users from Venezuela 


0- 


2018-05 2018-06 2018-08 2018-09 2018-10 


The Tor Project - https://metrics.torproject.org/ 








China (pre 2018) 


* China also shifted to blackholing 
the entire IP address (not just the 
offending port). 

e Any old probers are enough to get 
bridges blocked (0.2.9, ORPort, etc) 








China (mid 2018) 


* Lantern uses obfs4 proxies for its 
own circumvention tool 


٠ After a while, the proxies they give 
their users don’t work so well. 


A another example of tough feedback 
loop 
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China (mid 2019) 


٠ 0.3.2 Tor clients, talking to 0.3.5 
Tor bridges, don’t trigger active 
probing anymore. 

* We guess it has to do with changes 
in advertised ciphersuites on the 
client side. 
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Video Rewards + Subscribe - 30 days free 3] Login & Register 


HOME NEWS SPORT BUSINESS ALL SECTIONS 


Technology Intelligence 


The Telegraph 


Innovation Big Tech Start-ups Politics of Tech Gaming 


© | Technology Intelligence 

Dozens of US spies killed after Iran and 
China uncovered CIA messaging service 
using Google 


©) 





~A 
f share 


Q Search 





Gadgets 
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Tor censorship 5 


* Phase 3 (2019-?): 
Snowflake, obfs4, decoy routing, ... 





New pluggable transport: Snowflake 


SNOWFLAKE 
PROXIES 
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Mozilla Firefox 


1 client connected. 


Your snowflake has helped 1 user circumvent 
censorship in the last 24 hours. 


Firefo. wo 


Learn more 








What do the icons mean? 


Working: if your status is light blue or dark 
blue, your proxy is running. 

















4 A plain pink cupcake means the proxy is 
running but no one is using it right now. 


o 


wa A happy cupcake means someone is using 
your proxy right now. Neat! 


Not working: if your status is grey or black, 
there was a problém and your proxy is not 
running. Usually this is due to internet 
connection problems or firewall settings. 


= A Sad grey cupcake means that the badge 
las disabled itself. Try restarting your browser. 
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Streamlined obfs4 deployment 


* https://community.torproject.org/ 
relay/setup/bridge 


٠ The future: “apt install tor-servers’ 








BridgeDB needs a feedback cycle 


٠ Measure how much use each bridge 
sees 


* Measure bridge blocking 


٠ Then adapt bridge distribution to 
favor efficient distribution channels 


٠ Need to invent new distribution 
channels, eg Salmon from PETS 2015 
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Measuring bridge reachability 


٠ Passive: bridges track incoming 
connections by country; clients self-report 
blockage (via some other bridge) 

٠ Active: scan bridges from within the 
country; or measure remotely via indirect 
scanning 


٠ Bridges test for duplex blocking 
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ooni.torproject.org 


Censor 








explorer.ooni.torproject.org 





World Map 





po. a nn 
— 22 SE E = > 
Kan > ~ E È 
APA = - 5 
EC e 5 
u“ 3 
x "2, 
5 E 
> - "mi " AX 
Measurements m | 5 
a 
More than 100,000 J 
More than 10,000 vs 
Less than 10,000 
Discoveries M» 7 X LÍA ‘ 


® Confirmed censorship cases 
lu Vendors identified 








Other upcoming designs 

۰ FTE/Marionette: transform traffic 
payloads according to a regexp or 
a state machine 

° Decoy routing: run a tap at an 


ISP, look for steganographic tags, 
inject responses from the middle 
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Arms races 


٠ Censorship arms race is bad 


e Surveillance arms race is worse 


- And centralization of the Internet 
makes it worse still 
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How can you help? 


e Run an 06154 bridge, be a Snowflake 


٠ Teach your friends about Tor, and privacy 
in general 


٠ Help find — and fix — bugs 

٠ Work on open research problems 
(petsymposium.org) 

٠ donate.torproject.org 
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d ih e e‏ الا 


TOR'S BUG SMASH FUND 


donate.torproject.org 


ERA 





























